In testing Nessus, I'm finding that I'm running into false negatives on certain sql injection vulnerabilities -- in reviewing my log, I've noticed the following "time-outs" -- which makes me suggest that the proper plug-ins aren't running to completion -- any ideas on how to "set" this default 120 sec timer? Or if it's something else that might cause that?
Log errors below... [Thu Jan 08 10:03:43 2009][2632] DDI_Directory_Scanner.nasl (pid 507) is slow to finish in 120 secs against 192.168.3.9 - killing it [Thu Jan 08 10:05:57 2009][2632] torturecgis.nasl (pid 598) is slow to finish in 120 secs against 192.168.3.9 - killing it [Thu Jan 08 10:09:50 2009][2632] cross_site_scripting.nasl (pid 955) is slow to finish in 120 secs against 192.168.3.9 - killing it [Thu Jan 08 10:24:10 2009][2632] sql_injection.nasl (pid 2669) is slow to finish in 120 secs against 192.168.3.9 - killing it [Thu Jan 08 10:34:00 2009][2632] blackice_dos.nasl (pid 2976) is slow to finish in 120 secs against 192.168.3.32 - killing it [Thu Jan 08 10:36:07 2009][2632] stream.nasl (pid 2979) is slow to finish in 120 secs against 192.168.3.32 - killing it Any help / suggestions are appreciated -Charles This message is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivery of the message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by telephone at 630-344-1586. _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
